Giter VIP home page Giter VIP logo

abuse-ssl-bypass-waf's Introduction

abuse-ssl-bypass-waf

Helping you find the SSL/TLS Cipher that WAF cannot decrypt and Server can decrypt same time

Referer article: Bypassing Web-Application Firewalls by abusing SSL/TLS

Idea

Usage

python abuse-ssl-bypass-waf.py --help

If you can find keyword or regex when hit the WAF page, you can use:

python abuse-ssl-bypass-waf.py -regex "regex" -target https://target.com

or you cannot find keyword or regex when filter by WAF,you can use:

python abuse-ssl-bypass-waf.py -thread 4 -target https://target.com

Notice: If you are worry about WAF drop the connection, you have better not use -thread option.

Thirdparty

curl

sslcan

Notice: If your operation system is not Windows, you should be modify config.py ,adjust curl and sslscan path & command values.

Running

If you don't know what the type of the WAF, you can compare the html response content length and try to find the bypassing WAF ciphers

knowing the hit WAF page keyword or regex:

When using some SSL/TLS ciphers request the payload URL, If WAF keyword or regex not in html page, there is a way bypassing WAF using Cipher!

abuse-ssl-bypass-waf's People

Contributors

landgrey avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

harry1080 dm2333 nazicc c0dak sry309 hack2012 mkv4 difa12321 lengyun123456 rudrasingh99 sceptr3 sarthak1598 raystyle gustuner imulmul lulukelu uunoob greencandle969 an4kein seabreg shad0w008 gwg422 theburn pentest-tools waflib siegelcpp h1d3r guyuelh code4security sjpi gavz rassec seiriosalpha joozyz hunter0x8 claude743 whizsail fadinglr hartl3y94 jackpot777 jsomething-for-nothing cyal1 luopeixiong qianniaoge badarsaghir dr-r00t3r ioncodes polarpeak silentsoul04 munstar0s jay1984gemini attacker-codeninja hax0rg1rl gsatyadev some-say rakhithjk saud818 beike2020 xzone911 darknesschieftain leasonj bellyfat gtrrnr mmillerxyz snow842 leomatias

abuse-ssl-bypass-waf's Issues

IndexError: list index out of range

Hi, I'm receiving this following error, while running on windows 10 and pyhton 3.6. Thanks in advance.
[+] Target: https://www.nakedcph.com/ is alive
[+] Testing Web Server Supported SSL/TLS Ciphers ...
[-] No SSL/TLS Ciphers of target supported
[+] Request-1:https://www.nakedcph.com/ Request-2:https://www.nakedcph.com//?Lid=1008610086
[!] Response-1 length:[125262] != Response-2 length:[125282]
[+] Now Request: https://www.nakedcph.com//?Lid=1%27or%271%27=%271..%2F..%2F..%2Fetc%2Fpasswd
Traceback (most recent call last):
File "abuse-ssl-bypass-waf.py", line 154, in
bypass_testing(int(str(args.thread)))
File "abuse-ssl-bypass-waf.py", line 124, in bypass_testing
base_cipher_length = dict(cipher_content_length[0]).values()[0]
IndexError: list index out of range

Error start script

Hello i have this erro now .its possible help me to solve this ?
thanks

Traceback (most recent call last):
File "abuse-ssl-bypass-waf.py", line 167, in
bypass_testing(int(str(args.thread)))
File "abuse-ssl-bypass-waf.py", line 101, in bypass_testing
if is_alive():
File "abuse-ssl-bypass-waf.py", line 27, in is_alive
response = curl_request(target_handle(target), alive_command)
File "abuse-ssl-bypass-waf.py", line 40, in curl_request
execute = subprocess.Popen(command, shell=False, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
File "/usr/lib/python2.7/subprocess.py", line 394, in init
errread, errwrite)
File "/usr/lib/python2.7/subprocess.py", line 1047, in _execute_child
raise child_exception
OSError: [Errno 2] No such file or directory

throghing lots of errers

╭─hritom@0xm4lw4r3 in repo: abuse-ssl-bypass-waf on  master [!] via  v3.11.6 took 65ms
╰─λ python abuse-ssl-bypass-waf.py -target https://ibm.com
[+] Target: https://ibm.com is alive
[+] Testing Web Server Supported SSL/TLS Ciphers ...
Traceback (most recent call last):
File "/mnt/shadow/Documents/tools/abuse-ssl-bypass-waf/abuse-ssl-bypass-waf.py", line 170, in
bypass_testing(int(str(args.thread)))
File "/mnt/shadow/Documents/tools/abuse-ssl-bypass-waf/abuse-ssl-bypass-waf.py", line 110, in bypass_testing
ciphers = get_supported_ciphers()
^^^^^^^^^^^^^^^^^^^^^^^
File "/mnt/shadow/Documents/tools/abuse-ssl-bypass-waf/abuse-ssl-bypass-waf.py", line 58, in get_supported_ciphers
body = curl_request(target, ciphers_command, timeout=60)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/mnt/shadow/Documents/tools/abuse-ssl-bypass-waf/abuse-ssl-bypass-waf.py", line 43, in curl_request
execute = subprocess.Popen(command, shell=False, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/subprocess.py", line 1026, in init
self._execute_child(args, executable, preexec_fn, close_fds,
File "/usr/lib/python3.11/subprocess.py", line 1950, in _execute_child
raise child_exception_type(errno_num, err_msg, err_filename)
FileNotFoundError: [Errno 2] No such file or directory: '/usr/local/bin/sslscan'

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.